Search for vulnerabilities
Vulnerability details: VCID-9q85-xf9x-aaap
Vulnerability ID VCID-9q85-xf9x-aaap
Aliases CVE-2011-3885
Summary Use-after-free vulnerability in Google Chrome before 15.0.874.102 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to stale Cascading Style Sheets (CSS) token-sequence data.
Status Published
Exploitability 0.5
Weighted Severity 6.8
Risk 3.4
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-416 Use After Free
System Score Found at
generic_textual Low http://people.canonical.com/~ubuntu-security/cve/2011/CVE-2011-3885.html
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.02414 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.03662 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.09819 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.09819 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.09819 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.09819 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.09819 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.09819 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.09819 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.09819 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.09819 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.09819 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.09819 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.09819 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
epss 0.11724 https://api.first.org/data/v1/epss?cve=CVE-2011-3885
generic_textual Low https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3885
cvssv2 7.5 https://nvd.nist.gov/vuln/detail/CVE-2011-3885
Reference id Reference type URL
http://code.google.com/p/chromium/issues/detail?id=100059
http://code.google.com/p/chromium/issues/detail?id=97599
http://code.google.com/p/chromium/issues/detail?id=98064
http://code.google.com/p/chromium/issues/detail?id=98556
http://code.google.com/p/chromium/issues/detail?id=99294
http://code.google.com/p/chromium/issues/detail?id=99880
http://googlechromereleases.blogspot.com/2011/10/chrome-stable-release.html
http://lists.apple.com/archives/security-announce/2012/Mar/msg00000.html
http://lists.apple.com/archives/security-announce/2012/Mar/msg00001.html
http://lists.apple.com/archives/security-announce/2012/Mar/msg00003.html
http://people.canonical.com/~ubuntu-security/cve/2011/CVE-2011-3885.html
https://api.first.org/data/v1/epss?cve=CVE-2011-3885
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3885
http://secunia.com/advisories/48274
http://secunia.com/advisories/48288
http://secunia.com/advisories/48377
https://exchange.xforce.ibmcloud.com/vulnerabilities/70963
https://exchange.xforce.ibmcloud.com/vulnerabilities/73804
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13216
http://www.securitytracker.com/id?1026774
cpe:2.3:a:apple:itunes:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:*:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
CVE-2011-3885 https://nvd.nist.gov/vuln/detail/CVE-2011-3885
GLSA-201111-01 https://security.gentoo.org/glsa/201111-01
No exploits are available.
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P Found at https://nvd.nist.gov/vuln/detail/CVE-2011-3885
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.83665
EPSS Score 0.02414
Published At March 28, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
There are no relevant records.